Important: glibc

Issue Overview: Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen including internal dlopen calls after setlocale or calls to...

AMD Optimizing CPU Libraries 安全漏洞

AMD Optimizing CPU Libraries is a suite of mathematical function libraries from UltraMicroelectronics AMD. A security vulnerability exists in AMD Optimizing CPU Libraries that originates from DLL hijacking and could lead to elevation of privilege and arbitrary code execution...

Hitachi USB-CONVERTERCABLE DRIVER 安全漏洞

Hitachi USB-CONVERTERCABLE DRIVER is a driver from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi USB-CONVERTERCABLE DRIVER that originates from an unsafe loading of a dynamic link library, which could lead to local code execution or information disclosure...

[SECURITY] Fedora 41 Update: libell-0.69-1.fc41

The Embedded Linux Library ELL provides core, low-level functionality for system daemons. It typically has no dependencies other than the Linux kernel, C standard library, and libdl for dynamic linking. While ELL is designed to be efficient and compact enough for use on embedded Linux platforms, ...

CVE-2021-28246

CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The code in the library will be...

VulnCheck KEV: CVE-2017-17562

Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked...

EQGRP

This is a repository containing the decrypted content of eqgrp-auction-file.tar.xz. The repository includes three files: Linux/bin/7z, Linux/bin/7z.so, and Linux/bin/7za. These files are likely related to the 7-Zip file archiver. The files are in ELF Executable and Linkable Format format, which i...

Lightning Text-to-Speech Converter has a dll hijacking vulnerability

Lightning text-to-speech conversion software is a text-to-speech conversion software with intelligent text and speech conversion under Jiangxia Information Technology Huizhou Co. Lightning Text-to-Speech Converter has a dll hijacking vulnerability that can be exploited by attackers to execute...

Cloud Calendar is vulnerable to dll hijacking

Cloud Calendar is a time management tool developed by Qingdao Softmedia Network Technology Co. A dll hijacking vulnerability exists in the Cloud Calendar client, which can be exploited by attackers to execute arbitrary code...

Robber - Tool For Finding Executables Prone To DLL Hijacking

Robber is a free open source tool developed using Delphi XE2 without any 3rd party dependencies. What is DLL hijacking ?! Windows has a search path for DLLs in its underlying architecture. If you can figure out what DLLs an executable requests without an absolute path triggering this search...

[SECURITY] Fedora 25 Update: libpng10-1.0.67-1.fc25

The libpng10 package contains an old version of libpng, a library of functi ons for creating and manipulating PNG Portable Network Graphics image format files. This package is needed if you want to run binaries that were linked dynamic ally with libpng 1.0.x...

Fedora 23 : nfdump (2016-54dfd21f15)

nfdump 1.6.15 released. --- - Fix Security issue http://www.security-assessment.com/files/documents/advis ory/Nfdump%20nfcapd%201.6.14%20-%20Multiple%20Vulnerabil ities.pdf - Fix obyte, opps and obps output records - Fix wrong bps type case in cvs output. Fix opbs ipbs typos nfdump 1.6.14 release...

Fedora 22 : nfdump (2016-3b49c9aa49)

nfdump 1.6.15 released. --- - Fix Security issue http://www.security-assessment.com/files/documents/advis ory/Nfdump%20nfcapd%201.6.14%20-%20Multiple%20Vulnerabil ities.pdf - Fix obyte, opps and obps output records - Fix wrong bps type case in cvs output. Fix opbs ipbs typos nfdump 1.6.14 release...

Fedora 24 : nfdump (2016-a771d67ba0)

nfdump 1.6.15 released. --- - Fix Security issue http://www.security-assessment.com/files/documents/advis ory/Nfdump%20nfcapd%201.6.14%20-%20Multiple%20Vulnerabil ities.pdf - Fix obyte, opps and obps output records - Fix wrong bps type case in cvs output. Fix opbs ipbs typos nfdump 1.6.14 release...

[SECURITY] Fedora 23 Update: libpng10-1.0.66-1.fc23

The libpng10 package contains an old version of libpng, a library of functi ons for creating and manipulating PNG Portable Network Graphics image format files. This package is needed if you want to run binaries that were linked dynamic ally with libpng 1.0.x...

Dropbox 3.3.x - OSX FinderLoadBundle Local Root Exploit

The setuid root FinderLoadBundle that was included in older DropboxHelperTools versions for OS X allows loading of dynamically linked shared libraries that are residing in the same directory. The directory in which FinderLoadBundle is located is owned by root and that prevents placing arbitrary...

[SECURITY] Fedora 20 Update: libpng10-1.0.63-1.fc20

The libpng10 package contains an old version of libpng, a library of functi ons for creating and manipulating PNG Portable Network Graphics image format files. This package is needed if you want to run binaries that were linked dynamic ally with libpng 1.0.x...

[SECURITY] Fedora 22 Update: libpng10-1.0.63-1.fc22

The libpng10 package contains an old version of libpng, a library of functi ons for creating and manipulating PNG Portable Network Graphics image format files. This package is needed if you want to run binaries that were linked dynamic ally with libpng 1.0.x...

soapbox Local Root / Privilege Escalation Vulnerability

----------------------------------- soapbox 0.3.1 = Local Root Exploit ----------------------------------- Vendor URI: http://dag.wieers.com/home-made/soapbox/ Credit: Jean Pascal Pereira [email protected] Description: "Soapbox allows to restrict processes to write only to those places you want...

soapbox 0.3.1 - Local Privilege Escalation

soapbox 0.3.1 - Local Privilege Escalation ----------------------------------- soapbox 0.3.1 Description: "Soapbox allows to restrict processes to write only to those places you want. Read-access however is still based on file-permissions. By preloading the Soapbox library, you can run programs a...